From c16739bba646f7eabcf8fc35f2bf580237a225d9 Mon Sep 17 00:00:00 2001
From: Peter Becker <floyd.net@gmail.com>
Date: Sun, 11 Sep 2016 10:55:33 +0200
Subject: [PATCH] Add description for pinned server ssh-keys

---
 README.md | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/README.md b/README.md
index 268e9cc..b93522d 100644
--- a/README.md
+++ b/README.md
@@ -109,6 +109,31 @@ docker run \
     foo::1001
 ```
 
+## Using custom SSH key for server
+
+This container will generate an ssh-key for OpenSSH at first run. To avoid this, you can map Ed25519 or RSA keys from the host inside the container.
+
+### Ed25519 key
+```
+docker run \
+    -v /host/ssh_host_ed25519_key:/etc/ssh/ssh_host_ed25519_key \
+    -v /host/share:/home/foo/share \
+    -p 2222:22 -d atmoz/sftp \
+    foo::1001
+```
+Tip: you can generate an Ed25519 key with this command: `ssh-keygen -t ed25519 -f /host/ssh_host_ed25519_key < /dev/null`
+
+### RSA key
+```
+docker run \
+    -v /host/ssh_host_rsa_key:/etc/ssh/ssh_host_rsa_key \
+    -v /host/share:/home/foo/share \
+    -p 2222:22 -d atmoz/sftp \
+    foo::1001
+```
+Tip: you can generate an Ed25519 key with this command: `ssh-keygen -t rsa -b 4096 -f /etc/ssh/ssh_host_rsa_key < /dev/null`
+
+
 ## Execute custom scripts or applications
 
 Put your programs in `/etc/sftp.d/` and it will automatically run when the container starts.